adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
47,145 Commits 27 Branches 1,043 Tags
ac20372d00a5bb0e3cbaa0212f04273cb9a8cd30
Commit Graph

24199 Commits

Author SHA1 Message Date
Shelby Pace b5fb970aec Land #10133, Add HID discoveryd RCE exploit 2018-07-06 14:32:29 -05:00
Wei Chen 545e91af00 Land #10262, Add GitList argument injection exploit module 2018-07-06 14:28:20 -05:00
Wei Chen 82c74eb765 Small changes 2018-07-06 14:25:58 -05:00
Shelby Pace b1456df757 made suggested changes 2018-07-06 12:48:38 -05:00
Brent Cook b4b7bf03da Land #10171, Implement desktop shell and screensaver post modules 2018-07-05 17:33:06 -05:00
thesubtlety 970c164e06 fix undefined method capitalize error for array 2018-07-05 14:33:51 -07:00
Shelby Pace 5d0652fab1 changed inconsistent capitalization 2018-07-05 15:56:41 -05:00
Shelby Pace 2b452d5681 added documentation and check 2018-07-05 15:47:21 -05:00
Brent Cook 05a0d79be7 Land #10219, Add HP VAN SDN Controller exploit 2018-07-05 14:21:44 -05:00
William Vu 53d5d82498 Rename module to match new vector 2018-07-05 13:31:16 -05:00
Shelby Pace 507fd22958 added http post and generating payload 2018-07-05 13:21:22 -05:00
William Vu 762b4b5e53 Simplify creds auth by checking X-Auth-Token alone 
It's a lot more direct than checking for the redirect.
 2018-07-05 13:20:27 -05:00
William Vu 2b069f45ca Clarify how we're using the auth token for creds 
In the service token's case, the service token *is* the auth token.
 2018-07-05 13:05:23 -05:00
William Vu 41b0adad88 Use uninstall action command injection 2018-07-03 18:07:22 -05:00
Shelby Pace 7d0b8dee4a making request for Gitlist source 2018-07-03 14:27:46 -05:00
William Vu a25a656d28 Add "E" to HP to make HPE for better searches 
We'll stick with calling it HP everywhere else.
 2018-07-03 10:29:09 -05:00
Brent Cook 5946245d87 avoid using SMBv2 on Windows XP Native Upload targets 2018-07-02 16:07:27 -05:00
Wei Chen 2ec091931a Land #10237, Add Boxoft WAV to MP3 Converter exploit module 2018-07-02 14:01:27 -05:00
Wei Chen 3e33a6f0a4 Update moduel boxoft_wav_to_mp3 2018-07-02 14:00:33 -05:00
William Vu 1bf94ac448 Spruce up check method and related 2018-07-02 13:59:24 -05:00
Wei Chen 12141136d7 Land #9896, Java JMX Package Name Randomization 
Land #9896
 2018-07-02 13:41:39 -05:00
William Vu 6e090acc76 Stop joking with timeouts 2018-07-02 13:18:31 -05:00
William Vu 78ca4d4217 Finally use Msf::Util::EXE.to_zip 8) 2018-07-02 13:04:59 -05:00
Shelby Pace 54fce378fa added target versions to documentation 2018-07-02 09:20:17 -05:00
Brent Cook 85dc81a58b Land #10185, add SMBv1/2 support in psexec 2018-06-29 17:49:27 -05:00
Shelby Pace 3b5555542c add exploit module and documentation 2018-06-29 15:17:12 -05:00
William Vu 78cefe0528 Clarify original exploit credit 
It's definitely more than a PoC (exploit). It's weaponized.
 2018-06-29 13:02:40 -05:00
William Vu 34f303187f Drop privesc retval, since it's obsoleted by print 2018-06-29 12:53:59 -05:00
Jacob Robles fc3199259b Land #9958, Nagios xi 2 electric 2018-06-29 12:16:18 -05:00
William Vu dbb502ae19 Refactor code and address review comments 2018-06-29 12:13:15 -05:00
Jacob Robles 675a736ab7 Update Docs 2018-06-29 11:08:31 -05:00
Jacob Robles 574c47cba6 Change Ranking 
Command to change the database user
account could cause a DoS condition
if the credentials are incorrect.
 2018-06-29 10:56:18 -05:00
Jacob Robles 57b89444f3 Additional style fixes 2018-06-29 10:53:57 -05:00
Brendan Coles c508a5f7f3 Land #10213, Add FTPShell client 6.70 Stack Buffer Overflow exploit 2018-06-29 14:40:51 +00:00
Daniel Teixeira 1e148a8862 Update ftpshell_cli_bof.rb 2018-06-29 14:22:40 +01:00
Jacob Robles 7532490a1e Style/Whitespace fixes 2018-06-29 07:02:45 -05:00
William Vu 40ac79ced0 Land #10218, MS17-010 Windows Embedded Standard 7 2018-06-28 16:11:56 -05:00
Daniel Teixeira 1854793253 Update ftpshell_cli_bof.rb 2018-06-28 13:01:13 +01:00
Daniel Teixeira bd2fb56adf Update ftpshell_cli_bof.rb 2018-06-28 12:55:48 +01:00
William Vu 36a37cf6ab Add HP VAN SDN Controller exploit 2018-06-28 02:14:04 -05:00
zerosum0x0 a5c0881c08 add Windows Embedded Standard 7 support 2018-06-27 19:17:18 -06:00
Matthew Kienow 2a31958f6a Bump metasploit_payloads-mettle to version 0.4.1 2018-06-27 17:55:08 -04:00
Brent Cook e17744df8d Land #10215, add support for payload estimation for IPv6-specific modules 2018-06-27 16:46:54 -05:00
Adam Cammack 25b9f97a32 Update cached payload size update to support IPv6 2018-06-27 16:26:41 -05:00
William Vu dbb0748c1c Land #9998, customizable golden ticket duration 2018-06-27 15:51:56 -05:00
William Vu d7770a98b2 s/Seperated/Separated/ 2018-06-27 15:36:41 -05:00
Adam Cammack ce7d4cd280 Land #10109, Teradata login scanner and SQL runner 2018-06-27 15:35:57 -05:00
Adam Cammack 9d8294fcc9 Mark Teradata login scanner executable 2018-06-27 15:35:13 -05:00
Adam Cammack 8b2bd35659 Fixup option references in Teradata SQL 2018-06-27 15:34:29 -05:00
Adam Cammack 1dbcf0fd09 Cleanup Teradata SQL options 2018-06-27 15:12:21 -05:00